$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sPKwO-2CL2SYVGdRPLKEaTT0pGk.roa File: sPKwO-2CL2SYVGdRPLKEaTT0pGk.roa (raw, json) Hash identifier: b7VX+X6VFWMxigZxDHnGosIb8nyTRGCPWQSYZOCbFxo= Subject key identifier: B0:F2:B0:3B:ED:82:2F:64:98:54:67:51:3C:B2:84:69:34:F4:A4:69 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 14FF Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sPKwO-2CL2SYVGdRPLKEaTT0pGk.roa Signing time: Fri 22 Aug 2025 08:55:01 +0000 ROA not before: Fri 22 Aug 2025 08:55:01 +0000 ROA not after: Sat 22 Aug 2026 08:14:28 +0000 asID: 9924 IP address blocks: 210.208.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 08:44:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5375 (0x14ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Aug 22 08:55:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B0F2B03BED822F64985467513CB2846934F4A469 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:b0:ad:74:9f:ee:04:2c:a8:9a:85:66:e0:06: 93:6d:0b:f6:5d:ab:cb:e0:7d:f5:e6:c6:e8:87:e8: 49:e6:88:ba:d7:da:84:57:59:af:e1:36:6b:18:a7: 89:1a:4d:a1:7e:20:a6:9e:3e:e6:09:5b:5f:4e:84: 7a:ad:9a:df:8a:de:a7:ef:d4:b7:a1:2d:e8:44:8b: e0:16:6f:7f:a8:11:8d:fa:1c:13:d5:8f:e7:19:15: 32:08:04:3d:7e:ce:bb:e8:9c:08:bb:d8:ba:19:8e: 35:71:65:9b:20:94:35:98:f4:59:f0:f2:e1:2e:a8: a8:48:37:db:0c:4b:56:25:be:44:b4:9e:61:21:63: fe:c9:36:3e:4e:84:1d:82:1c:7d:26:c0:31:e4:0a: 28:23:49:2b:8b:30:7a:bc:ac:58:3b:ce:35:2d:ea: 7c:ea:fe:54:28:a0:5a:1e:25:27:1f:12:02:e2:dd: 50:9d:93:b2:2d:46:01:46:b1:d6:d3:3d:f7:81:ea: 72:17:7d:69:2f:fc:57:c5:7f:85:14:08:2f:ee:ed: 29:ae:5f:30:c2:f3:f4:ff:88:7b:b4:52:d9:a6:0d: 58:20:fb:c4:bb:17:f2:64:86:5a:27:8c:39:67:2f: f3:63:29:65:e4:5a:fe:2f:db:61:55:96:fc:11:77: ac:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:F2:B0:3B:ED:82:2F:64:98:54:67:51:3C:B2:84:69:34:F4:A4:69 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/sPKwO-2CL2SYVGdRPLKEaTT0pGk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.208.192.0/18 Signature Algorithm: sha256WithRSAEncryption 44:43:91:ed:72:33:6c:ff:55:e8:72:a4:2a:27:00:ea:7f:84: 00:ee:64:fc:ec:53:90:e6:22:1b:d1:fb:e7:f0:38:d7:2b:e3: 9a:91:d0:0a:54:d0:88:fc:bb:a1:fe:d1:53:dd:f1:6b:19:9d: f6:66:c5:3c:66:0c:5f:c4:62:5e:63:1e:ed:3a:74:20:64:f1: 22:80:9f:98:0d:6b:fc:4a:10:17:57:46:44:b8:60:67:88:7b: a5:d3:f1:22:47:31:33:65:f2:91:fd:36:97:fe:7f:ad:89:f7: 6d:b0:ef:d0:90:9b:bf:cb:fd:62:b7:17:30:1f:c8:61:fe:61: 20:74:35:83:32:4d:72:24:b2:9c:e0:30:03:8c:80:d0:6d:d6: f5:05:dc:61:0a:f8:cf:1f:2c:e2:01:b2:49:9a:77:0b:23:f5: de:e5:cd:a1:5b:3c:88:78:41:18:9e:45:20:69:1c:f2:da:40: c9:43:5a:ad:de:1e:b2:3d:52:cb:f9:d4:47:56:fa:75:0f:93: a8:c8:09:b5:71:b8:ef:cd:87:a5:0f:7d:10:f2:9d:60:1c:b6: 1f:a4:db:ad:06:5c:1f:57:0e:e8:82:4b:48:2f:3e:46:22:1d: d3:32:4b:f0:ac:be:6e:da:af:8e:56:d4:b9:34:b7:2c:77:cc: c0:40:e2:82 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICFP8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTA4MjIw ODU1MDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwRjJCMDNCRUQ4MjJG NjQ5ODU0Njc1MTNDQjI4NDY5MzRGNEE0NjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJsK10n+4ELKiahWbgBpNtC/Zdq8vgffXmxuiH6EnmiLrX2oRX Wa/hNmsYp4kaTaF+IKaePuYJW19OhHqtmt+K3qfv1LehLehEi+AWb3+oEY36HBPV j+cZFTIIBD1+zrvonAi72LoZjjVxZZsglDWY9Fnw8uEuqKhIN9sMS1YlvkS0nmEh Y/7JNj5OhB2CHH0mwDHkCigjSSuLMHq8rFg7zjUt6nzq/lQooFoeJScfEgLi3VCd k7ItRgFGsdbTPfeB6nIXfWkv/FfFf4UUCC/u7SmuXzDC8/T/iHu0UtmmDVgg+8S7 F/JkhlonjDlnL/NjKWXkWv4v22FVlvwRd6zlAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUsPKwO+2CL2SYVGdRPLKEaTT0pGkwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvc1BLd08tMkNMMlNZVkdk UlBMS0VhVFQwcEdrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BtLQwDANBgkqhkiG9w0BAQsFAAOCAQEAREOR7XIzbP9V6HKkKicA6n+EAO5k/OxT kOYiG9H75/A41yvjmpHQClTQiPy7of7RU93xaxmd9mbFPGYMX8RiXmMe7Tp0IGTx IoCfmA1r/EoQF1dGRLhgZ4h7pdPxIkcxM2Xykf02l/5/rYn3bbDv0JCbv8v9YrcX MB/IYf5hIHQ1gzJNciSynOAwA4yA0G3W9QXcYQr4zx8s4gGySZp3CyP13uXNoVs8 iHhBGJ5FIGkc8tpAyUNard4esj1Sy/nUR1b6dQ+TqMgJtXG4782HpQ99EPKdYBy2 H6TbrQZcH1cO6IJLSC8+RiId0zJL8Ky+btqvjlbUuTS3LHfMwEDigg== -----END CERTIFICATE-----Generated at Sun Aug 24 06:49:54 2025 by rpki-client